{"id":433,"date":"2025-10-03T09:48:48","date_gmt":"2025-10-03T13:48:48","guid":{"rendered":"https:\/\/bsidesmtl.ca\/?page_id=433"},"modified":"2025-10-03T10:45:28","modified_gmt":"2025-10-03T14:45:28","slug":"programme-2023-fr","status":"publish","type":"page","link":"https:\/\/bsidesmtl.ca\/fr\/bsides-montreal-fr\/programme-2023-fr\/","title":{"rendered":"Programme 2023 | FR"},"content":{"rendered":"\t\t
\n\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t

Horaire 2023 | 16 Septembre | Biblioth\u00e8que et Archives nationales du Qu\u00e9bec<\/h2>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

8:30AM | Ouverture des portes
<\/span><\/span><\/span><\/strong><\/p>

\u00a0<\/span><\/span><\/span><\/strong><\/p>

9:00AM \u2013 9:05AM | Mots d’ouverture || Reverse Engineering For Malware Analysis Workshop (Salle M.460)
<\/span><\/span><\/span><\/strong><\/p>

\u00a0<\/b><\/span><\/span><\/span><\/p>

9:05AM \u2013 9:30AM | Capt(ret) Steve Waterhouse
<\/b><\/span><\/span><\/span><\/p>

Avons-nous am\u00e9lior\u00e9 notre r\u00e9silience face \u00e0 l\u2019\u00e9volution technologique en 25 ans ?<\/span><\/span><\/span><\/p>

\u00a0<\/span><\/span><\/span><\/p>

9:30AM – 9:55AM | Julian & Pavle Bozalo
<\/span><\/span><\/span><\/strong><\/p>

Doing More With Less: Securing Small Organizations<\/span><\/span><\/span><\/p>

\u00a0<\/b><\/span><\/span><\/span><\/p>

9:55AM \u2013 10:20AM | Cybertom<\/b><\/span><\/span><\/span><\/p>

Revue rapide des \u00e9volution r\u00e9centes en cyber-strat\u00e9gie<\/span><\/span><\/span><\/p>

\u00a0<\/b><\/span><\/span><\/span><\/p>

10:20AM \u2013 10:45AM | Thomas Veynachter<\/b><\/span><\/span><\/span>
<\/b><\/span><\/span><\/span><\/p>

Le besoin et l’efficacit\u00e9 des transformations des \u00e9quipes s\u00e9curit\u00e9 dans les organisations<\/span><\/span><\/span><\/p>

\u00a0<\/b><\/span><\/span><\/span><\/p>

10:45AM \u2013 11:00AM | PAUSE CAF\u00c9<\/b><\/span><\/span><\/span>
<\/b><\/span><\/span><\/span><\/p>

\u00a0<\/b><\/span><\/span><\/span><\/p>

11:00AM \u2013 11:25AM | Mitch Breton<\/b><\/span><\/span><\/span>
<\/b><\/span><\/span><\/span><\/p>

Intro to Binary Exploitation With Pwntools<\/span><\/span><\/span><\/p>

\u00a0<\/b><\/span><\/span><\/span><\/p>

11:25AM \u2013 11:50AM | datalocaltmp<\/b><\/span><\/span><\/span>
<\/b><\/span><\/span><\/span><\/p>

A Ghidra visualisation is worth a thousand GDB breakpointss<\/span><\/span><\/span><\/p>

\u00a0<\/b><\/span><\/span><\/span><\/p>

11:50AM \u2013 12:15PM | Amir Gharib<\/b><\/span><\/span><\/span>
<\/b><\/span><\/span><\/span><\/span><\/p>

Combating Cloud Cryptojacking and Resource Abuse<\/span><\/span><\/span><\/span><\/p>

\u00a0<\/b><\/span><\/span><\/span><\/span><\/p>

12:15PM \u2013 1:15PM | D\u00ceNER<\/b><\/span><\/span><\/span><\/span>
<\/b><\/span><\/span><\/span><\/span><\/p>

\u00a0<\/b><\/span><\/span><\/span><\/span><\/p>

1:15PM \u2013 1:40PM | Christophe Reverd<\/b><\/span><\/span><\/span><\/span> || GitHub Actions 101 – Creating a DevSecOps Pipeline (Salle M.460)
<\/b><\/span><\/span><\/span><\/p>

Le MITRE contre ATT&CK\u00ae<\/span><\/span><\/span><\/p>

\u00a0<\/b><\/span><\/span><\/span><\/p>

1:40PM \u2013 2:05PM | Nicolas-Lo\u00efc Fortin<\/b><\/span><\/span><\/span>
<\/b><\/span><\/span><\/span><\/p>

Homo economicus: La malheureuse habitude de qualifier les humains comme le maillon faible<\/span><\/span><\/span><\/p>

\u00a0<\/b><\/span><\/span><\/span><\/p>

2:05PM \u2013 2:30PM | Terry Cutler<\/b><\/span><\/span><\/span>
<\/b><\/span><\/span><\/span><\/p>

\u201cInsider Secrets\u201d to HOW hackers are getting in, and WHY<\/span><\/span><\/span><\/p>

\u00a0<\/b><\/span><\/span><\/span><\/p>

2:30PM \u2013 2:55PM | Arnaud Palisson<\/b><\/span><\/span><\/span>
<\/b><\/span><\/span><\/span><\/p>

Loi 25 : les organisations face au d\u00e9fi de l’\u00c9valuation des facteurs relatifs \u00e0 la vie priv\u00e9e – Pr\u00e9sentation d\u2019une m\u00e9thode accessible incitant \u00e0 une s\u00e9curisation optimale des renseignements personnels<\/span><\/span><\/span><\/p>

\u00a0<\/b><\/span><\/span><\/span><\/p>

2:55PM \u2013 3:10PM | PAUSE CAF\u00c9<\/b><\/span><\/span><\/span>
<\/b><\/span><\/span><\/span><\/span><\/p>

\u00a0<\/b><\/span><\/span><\/span><\/span><\/p>

3:10PM \u2013 3:35PM | Hugo Genesse<\/b><\/span><\/span><\/span><\/span>
<\/b><\/span><\/span><\/span><\/p>

All Bytes are Equal but Some are More Equal Than Others<\/span><\/span><\/span><\/p>

\u00a0<\/b><\/span><\/span><\/span><\/p>

3:35PM \u2013 4:00PM | Rolland Winters
<\/b><\/span><\/span><\/span><\/p>

Passive recon & intelligence collection using cyber-squatted domains<\/span><\/span><\/span><\/p>

\u00a0<\/span><\/b><\/span><\/span><\/span><\/p>

4:00PM \u2013 4:25PM | Francis Perron <\/span><\/b><\/span><\/span><\/span><\/p>

Petit guide (peut-\u00eatre) pratique d’une future carri\u00e8re en cybers\u00e9curit\u00e9 au Qu\u00e9bec<\/span><\/span><\/span><\/span><\/p>

\u00a0<\/span><\/b><\/span><\/span><\/span><\/p>

4:25PM \u2013 4:50PM | John Aron
<\/span><\/b><\/span><\/span><\/span><\/p>

Don’t lose control of your security controls and identity <\/span><\/span><\/span><\/span><\/p>

\u00a0<\/b><\/span><\/span><\/span><\/span><\/p>

4:50PM \u2013 4:55PM | Mots de cl\u00f4ture
<\/b><\/span><\/span><\/span><\/span><\/p>

\u00a0<\/b><\/span><\/span><\/span><\/span><\/p>

4:55PM \u2013 8:00PM | Cocktail<\/b><\/span><\/span><\/span><\/span><\/b><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t

\n\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t

Horaire 2023 \u2015 Programme d\u00e9taill\u00e9<\/h2>\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\"Amir-Gharib.jpg\"\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Amir Gharib<\/h3>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Combating Cloud Cryptojacking and Resource Abuse<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

Cloud environments are increasingly targeted by threat actors to abuse, where threat actors exploit compute resources to mine cryptocurrency or launch attacks against other organizations. Cryptojacking is a cyberattack that exploits cloud computing resources to mine cryptocurrency. It involves a threat actor compromising legitimate cloud tenants which leads to significant financial and reputational losses for organizations. Microsoft’s research reveals that targeted organizations faced more than $300,000 in compute fees from cryptojacking attacks. In this presentation, we will share the discovered TTPs (Tactics, Techniques, and Procedures) that we observed in numerous organizations executed by several threat actor groups. Cloud cryptojacking\/abuse follows a similar attack lifecycle regardless of the cloud provider. Threat actors need compromised credentials to execute attacks, making credential hygiene and cloud hardening crucial. They will leverage privilege escalation techniques if initial credentials lack sufficient permissions. To gain more abuse power, threat actors might modify subscription configurations. They can also hijack existing subscriptions or create new ones to conceal their operations. Once inside the cloud tenant, they create substantial compute resources, focusing on core types for efficient cryptocurrency mining. They install cryptomining software on virtual machines and add them to mining pools. Moreover, they utilize the compromised infrastructure to launch attacks against other companies. We will dissect the inner workings of cloud attacks such as cryptojacking and resource abuse, as well as how threat actors can pivot from cloud to on-premises. As we move from the initial access stage to the impact stage, we will explore key TTPs. By analyzing footprints and logs, we will provide insights that blue teamers can use to detect and counterattack these threats in Azure, AWS, and GCP especially at early stage of attacks.

Key Take away for:
– Blue Teamers and threat hunters: Take in new TTPs observed by Microsoft experts on several compromised cases and practical information to build high fidelity detections.
– Red Teamers: Get up to speed with related techniques used by ATPs (Advanced persistent threat) which are tracked by Microsoft security experts.
– GRC and Management: Understanding of strategies to strengthen cloud security postures, protect cloud workloads, and defend against a wide range of cloud-based threats and risks.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t

Bio<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

Amir Gharib<\/strong> is a senior security researcher at Microsoft. His main responsibility is to improve Microsoft’s detection capabilities across different workloads by researching novel attacks and detection mechanisms. As part of his role, he leverages events and signals from a variety of workloads and products to develop high-fidelity detection that can be used to disrupt attacks automatically. In the past, he was a technical manager at PwC performing incident response, threat hunting, and detection engineering. Furthermore, he worked with IBM Qradar to develop UEBA solutions for users and entities. He currently holds GCFA certification and a Master of Computer Science (MCS) degree specialized in cybersecurity. He has published and presented at several international conferences and journals. His publications have received more than 600 citations in recent years. Outside of work, he enjoys spending time with his family (plus his dog) and friends. He is currently training toward his private pilot license.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t\t
\n\t\t\t\t\t<\/path><\/svg><\/div>\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\"titeface_tzsORIN.jpg\"\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Francis Perron<\/h3>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Unleashing the Webhook Beast: When CI\/CD Goes Rogue and Organizations Fall<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\tLa cybers\u00e9curit\u00e9 est en vogue dans la presse, dans les \u00e9coles, et dans l’industrie qu\u00e9b\u00e9coise. Les derni\u00e8res ann\u00e9es nous ont offertes de belles, grosses vuln\u00e9rabilit\u00e9s et pertes de donn\u00e9s qui furent tr\u00e8s publiques, ajoutant, ou parfois d\u00e9marrant cette engouement. Nous abordons donc une petite revue de ce que les carri\u00e8res en cybers\u00e9curit\u00e9 vont devoir ajouter aux descriptions d’emplois dans les prochaines ann\u00e9es au Qu\u00e9bec. Cette \u00e9tude se base sur la situation locale pr\u00e9sente, comparant celle-ci avec les innovations en IA g\u00e9n\u00e9rative, les impacts des logiciels libres et ouverts, les changements l\u00e9gislatifs internationaux et la maturit\u00e9 des entreprises dans le domaine ces jours-ci. Au final, cette pr\u00e9sentation ne se veut pas une liste \u00e0 cocher, mais bien une r\u00e9flexion sur la cybers\u00e9curit\u00e9 et l’\u00e9volution soudaine que cette carri\u00e8re a subi r\u00e9cemment, et sur les nouvelles directions potentiels que les entreprises qu\u00e9b\u00e9coises devraient consid\u00e9rer pour leur organisation de s\u00e9curit\u00e9.\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Bio<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

Ce que Francis Perron<\/strong> aime par dessus tout sont les incidents et les vuln\u00e9rabilit\u00e9s. Oeuvrant au sein d\u2019Alphabet pendant 15 ans dans les \u00e9quipes de SRE et S\u00e9curit\u00e9, il a d\u00e9velopp\u00e9 une relation tr\u00e8s intime et particuli\u00e8re avec son t\u00e9l\u00e9avertisseur. Ce n\u2019est que r\u00e9cemment qu\u2019il a tourn\u00e9 cette page pour passer \u00e0 la gestion de projets, d\u2019\u00e9quipes et d\u2019organisations en s\u00e9curit\u00e9. D\u00e9sormais responsable de l\u2019organization de S\u00e9curit\u00e9 & TI chez Sanity, il garde sans cesse un oeil doux sur son t\u00e9l\u00e9phone, esp\u00e9rant qu\u2019il chante de nouveaux cyber-drames.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t\t
\n\t\t\t\t\t<\/path><\/svg><\/div>\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\"Arnaud-Palisson.png\"\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Arnaud Palisson<\/h3>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Loi 25 : les organisations face au d\u00e9fi de l'\u00c9valuation des facteurs relatifs \u00e0 la vie priv\u00e9e - Pr\u00e9sentation d\u2019une m\u00e9thode accessible incitant \u00e0 une s\u00e9curisation optimale des renseignements personnels<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

La Loi 25 entrera en vigueur dans sa quasi-totalit\u00e9 le 22 septembre prochain. Cette refonte majeure de la protection des renseignements personnels (PRP) concerne aussi bien les organismes publics que les entreprises. L\u2019une des dispositions phares de la nouvelle l\u00e9gislation porte sur les \u00ab \u00e9valuations des facteurs relatifs \u00e0 la vie priv\u00e9e \u00bb (\u00c9FVP), qui doivent \u00eatre r\u00e9alis\u00e9es pr\u00e9alablement \u00e0 la mise en place de nombreux traitements de renseignements personnels. Or, les petites et moyennes entreprises ne disposent pas de ressources sp\u00e9cialis\u00e9es en PRP ; tandis que, dans les grandes organisations, le nombre \u00e9lev\u00e9 d\u2019\u00c9FVP obligatoires emp\u00eachera leur \u00e9quipe de PRP de toutes les r\u00e9aliser. Ce sont donc le plus souvent des non-sp\u00e9cialistes qui seront charg\u00e9s de mener ces \u00e9valuations. On peut d\u00e8s lors craindre que, pour ne pas ob\u00e9rer le d\u00e9veloppement de leurs op\u00e9rations, certaines organisations r\u00e9aliseront des \u00c9FVP formelles \u2013 sans v\u00e9ritable consid\u00e9ration des enjeux de protection des renseignements personnels \u2013 ; ou bien elles prendront le risque de ne pas r\u00e9aliser les \u00c9FVP l\u00e9galement requises. Dans un cas comme dans l\u2019autre, les renseignements personnels se retrouveront particuli\u00e8rement expos\u00e9s \u00e0 des incidents de confidentialit\u00e9. La m\u00e9thodologie de r\u00e9alisation des \u00c9FVP devient donc une question centrale. Nous pr\u00e9sentons ici une m\u00e9thode qui ne se base ni sur des sc\u00e9narios de risque, ni sur une \u00e9valuation probabilit\u00e9\/impact. Elle est en revanche ax\u00e9e sur la notion de FACTEUR de risque d’atteinte \u00e0 la vie priv\u00e9e \u2013 comme nous y invitent d\u2019ailleurs explicitement les termes de la loi. Bas\u00e9e sur les modalit\u00e9s du traitement de renseignements personnels, cette m\u00e9thode objective propose un processus analytique simple et d\u00e9taill\u00e9, permettant de documenter clairement la prise de d\u00e9cision. En outre, elle incite les organisations \u00e0 s\u00e9lectionner des mesures de s\u00e9curit\u00e9 selon leur pertinence et leur degr\u00e9 d’intensit\u00e9, afin de prot\u00e9ger de fa\u00e7on optimale les renseignements personnels qui leur sont confi\u00e9s.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t

Bio<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

Arnaud Palisson<\/strong> est docteur en droit criminel fran\u00e7ais. De 1995 \u00e0 2005, \u00e0 Paris, il a \u00e9t\u00e9 analyste pour les services de renseignement du Minist\u00e8re de l\u2019Int\u00e9rieur – notamment en contre-terrorisme. Install\u00e9 ensuite \u00e0 Montr\u00e9al, il y a poursuivi ses activit\u00e9s en \u00e9valuation de la menace, au sein des services de renseignement de la S\u00fbret\u00e9 du Qu\u00e9bec, puis dans le secteur priv\u00e9, notamment \u00e0 la S\u00fbret\u00e9 a\u00e9roportuaire d\u2019A\u00e9roports de Montr\u00e9al. C\u2019est l\u00e0 qu\u2019il s\u2019est orient\u00e9 vers la gestion des risques des infrastructures essentielles, tout d\u2019abord en s\u00fbret\u00e9 physique, puis en s\u00e9curit\u00e9 de l\u2019information. En 2014, il se sp\u00e9cialise en protection des renseignements personnels, d\u2019abord au Centre universitaire de sant\u00e9 McGill, puis chez Industrielle Alliance. Aujourd\u2019hui conseiller expert en protection de la vie priv\u00e9e chez Eviden Services Inc. (anciennement In Fidem), il est \u00e9galement charg\u00e9 de cours \u00e0 l\u2019Universit\u00e9 de Montr\u00e9al et \u00e0 Polytechnique Montr\u00e9al, respectivement en gestion des risques de s\u00fbret\u00e9 et en cyberenqu\u00eate.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t\t
\n\t\t\t\t\t<\/path><\/svg><\/div>\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\"Steve-Waterhouse.jpg\"\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Capt(ret) Steve Waterhouse<\/h3>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Avons-nous am\u00e9lior\u00e9 notre r\u00e9silience face \u00e0 l\u2019\u00e9volution technologique en 25 ans ?<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

Les entreprises par leur transformation num\u00e9rique se doivent de prendre conscience tout comme tout le monde, que nous sommes tr\u00e8s d\u00e9pendants des TI maintenant et nous nous devons au quotidien toujours avoir un plan \u00ab\u00a0B\u00a0\u00bb. Cette pr\u00e9sentation se veut une r\u00e9flexion commune afin de changer nos perceptions en vue d\u2019une meilleure pr\u00e9paration \u00e0 ces risques. En 1998, le nord-est de l\u2019Am\u00e9rique du Nord a subi un \u00e9v\u00e8nement m\u00e9t\u00e9orologique hors du commun soit une temp\u00eate de verglas, avec de grandes cons\u00e9quences sur l\u2019\u00e9conomie de 3 provinces et 3 \u00e9tats am\u00e9ricains. Il y a eu heureusement peu de d\u00e9c\u00e8s (la majorit\u00e9 attribuable \u00e0 la mauvaise utilisation de chauffage d\u2019appoint) et notre soci\u00e9t\u00e9 d\u00e9butait \u00e0 peine \u00e0 d\u00e9couvrir l\u2019Internet. Pendant pr\u00e8s d\u2019un mois, beaucoup ont eu \u00e0 apprendre \u00e0 composer avec des difficult\u00e9s d\u2019organisation logistique (nourriture, carburant, m\u00e9dicaments) et comment se tenir au chaud si la vie de refuge d\u2019urgence n\u2019\u00e9tait pas possible. 25 ans plus tard, nous avons re\u00e7u l\u2019hivers dernier un autre \u00e9pisode de verglas qui a simplement cr\u00e9er des probl\u00e8mes avec des coupures \u00e9lectriques de quelques jours due aux arbres mal entretenus. Devant ce constat, si l\u2019\u00e9pisode de verglas 2023 aurait \u00e9t\u00e9 aussi grave qu\u2019en 1998, consid\u00e9rant la d\u00e9pendance de notre soci\u00e9t\u00e9 au num\u00e9rique et comment l\u2019\u00e9conomie est bas\u00e9e sur du \u00ab just in time \u00bb, est-ce que notre soci\u00e9t\u00e9, notre \u00e9conomie et nos gouvernances \u00e0 tous les niveaux, pr\u00eat \u00e0 y faire face de mani\u00e8re \u00e0 r\u00e9duire les cons\u00e9quences \u00e0 un niveau acceptable ?<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t

Bio<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

C’est au cours de sa carri\u00e8re militaire au sein du Royal 22e R\u00e9giment que le Capt(ret) Steve Waterhouse<\/strong> a troqu\u00e9 son arme contre un clavier et est devenu l’un des premiers cyber-soldats au Canada. Apr\u00e8s avoir travaill\u00e9 \u00e0 la formation de soldats et d’officiers aux armes de combat, Steve a ensuite travaill\u00e9 \u00e0 la mise en place des premiers r\u00e9seaux administratifs militaire au QGSQFT, \u00e0 la base de Montr\u00e9al et au Coll\u00e8ge militaire royal de Saint-Jean avec les Forces arm\u00e9es canadiennes, ainsi qu’\u00e0 la mise en \u0153uvre de pratiques modernes de cybers\u00e9curit\u00e9 comme premier Officier de S\u00e9curit\u00e9 des Syst\u00e8mes d\u2019information (OSSI). Il continue \u00e0 partager sa passion et son exp\u00e9rience en tant que charg\u00e9 de cours \u00e0 l’Universit\u00e9 de Sherbrooke dans le cadre du microprogramme de ma\u00eetrise en s\u00e9curit\u00e9 de l\u2019information – volet pr\u00e9vention. Il est invit\u00e9 \u00e0 apporter son exp\u00e9rience et son expertise aux commissions de la Chambre des communes du Canada et \u00e0 l’Assembl\u00e9e nationale du Qu\u00e9bec et est fr\u00e9quemment sollicit\u00e9 dans les m\u00e9dias canadiens pour commenter les questions de cybers\u00e9curit\u00e9. En 2022, M. Waterhouse a aussi \u00e9t\u00e9 le premier sous-ministre-adjoint \u00e0 la s\u00e9curit\u00e9 gouvernementale et \u00e0 la cybers\u00e9curit\u00e9 du minist\u00e8re de la cybers\u00e9curit\u00e9 et du num\u00e9rique du Qu\u00e9bec jusqu\u2019au d\u00e9but 2023.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t\t
\n\t\t\t\t\t<\/path><\/svg><\/div>\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\"Reverd.png\"\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Christophe Reverd<\/h3>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Le MITRE contre ATT&CK\u00ae<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

Outillez votre cyberd\u00e9fense en apprenant \u00e0 naviguer dans la matrice des tactiques et techniques utilis\u00e9es par les cybercriminels et leurs \u00e9cosyst\u00e8mes! Cette pr\u00e9sentation int\u00e9ressera autant les gestionnaires que les professionnels de la cybers\u00e9curit\u00e9 et de la gouvernance de la s\u00e9curit\u00e9 de l’information souhaitant d\u00e9velopper leurs connaissances du domaine des op\u00e9rations de cybers\u00e9curit\u00e9. Depuis ces derni\u00e8res ann\u00e9es, le MITRE ATT&CK\u00ae s’est immisc\u00e9 dans les op\u00e9rations de cybers\u00e9curit\u00e9 au point de devenir un standard de facto. Les \u00e9diteurs de solutions de cybers\u00e9curit\u00e9 l\u2019ont compris et int\u00e8grent de plus en plus cette approche dans leurs produits. Qu\u2019en est-il de vos pratiques de cybers\u00e9curit\u00e9 ou de celles de votre fournisseur de services cybers\u00e9curit\u00e9 g\u00e9r\u00e9s ? Que vous soyez impliqu\u00e9 dans la cybers\u00e9curit\u00e9 offensive ou d\u00e9fensive, apprenez comment penser comme un pirate informatique, comprendre sa motivation, ses actions et ses outils avec l\u2019approche MITRE ATT&CK\u00ae et D3FEND\u00ae. Que vous fassiez partie d\u2019une grande entreprise ou d\u2019une PME, prenez conscience de l\u2019importance de connaitre les faiblesses de votre cyberd\u00e9fense, et d\u2019identifier vos besoins afin d\u2019acqu\u00e9rir les technologies appropri\u00e9es pour y r\u00e9pondre. Que vous disposiez des ressources ou que vous fassiez appel \u00e0 un fournisseur de services g\u00e9r\u00e9s en cybers\u00e9curit\u00e9, d\u00e9couvrez comment vous assurer de disposer de l\u2019expertise ou des services pour d\u00e9tecter et de r\u00e9pondre aux incidents selon votre contexte. Levez le voile sur l\u2019op\u00e9rationnalisation de ce qui n\u2019est ni un produit ni une technologie dans les pratiques de cyberenseignement (CTI), chasse aux cybermenaces (TH) et simulations de cyberattaques (AE) ou encore comment renforcer la valeur du centre de gestion des op\u00e9rations de cybers\u00e9curit\u00e9 (SOC). Clarifier l\u2019int\u00e9gration de l’approche MITRE ATT&CK\u00ae dans votre strat\u00e9gie globale de s\u00e9curit\u00e9 de l’information en \u00e9valuant votre posture de cyberd\u00e9fense afin d’aligner vos contr\u00f4les avec les m\u00e9canismes de d\u00e9tection et de r\u00e9ponse requis. Enfin, appropriez-vous l\u2019\u00e9cosyst\u00e8me en ligne et les nombreuses ressources disponibles pour vous former ou vous faire certifier dans le cadre du programme MITRE ATT&CK Defender\u2122 (MAD).<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t

Bio<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

Tour \u00e0 tour employ\u00e9, entrepreneur et consultant, Christophe Reverd<\/strong> a eu l\u2019opportunit\u00e9 d\u2019\u00e9laborer, mettre en service, s\u00e9curiser et soutenir de grandes architectures d’entreprise (t\u00e9l\u00e9communications, bancaire, f\u00e9d\u00e9ral, provincial, municipal, transport, m\u00e9dias, \u00e9nergie). Ces derni\u00e8res ann\u00e9es, j’ai mis l’emphase sur la gestion des op\u00e9rations de cybers\u00e9curit\u00e9 en mode d\u00e9l\u00e9gu\u00e9 ainsi qu’en mode consultation. Titulaire d\u2019une ma\u00eetrise en administration, concentration gouvernance, audit et s\u00e9curit\u00e9 des technologies de l’information (TI) de l\u2019Universit\u00e9 de Sherbrooke, je suis \u00e9galement d\u00e9tenteur de certifications professionnelles en gestion de la s\u00e9curit\u00e9 de l\u2019information (CISSP-ISSMP), audit TI (CISA), gouvernance TI (CGEIT), risque TI (CRISC), MITRE ATT&CK (SOC, CTI, AE, THDE, PTM)) et infonuagique (Microsoft Azure). Ma passion \u00e0 promouvoir les technologies \u00e9mergentes a pris une nouvelle dimension par mon implication en \u00e9ducation o\u00f9 j’ai inculqu\u00e9 les meilleures pratiques en tant que charg\u00e9 de cours en gouvernance des TI \u00e0 l\u2019\u00c9cole de gestion pendant dix ans et en cyber s\u00e9curit\u00e9 au Centre de formation des TI (CEFTI) de la Facult\u00e9 des Sciences de l\u2019Universit\u00e9 de Sherbrooke \u00e0 l’automne 2019, parall\u00e8lement \u00e0 mon parcours professionnel.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t\t
\n\t\t\t\t\t<\/path><\/svg><\/div>\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\"Cybertom.jpg\"\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Cybertom<\/h3>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Revue rapide des \u00e9volution r\u00e9centes en cyber-strat\u00e9gie<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

Quels sont des \u00e9volutions r\u00e9centes qu’il faut prendre le temps de reconnaitre dans le domaine de la cyber? Pendant cette session nous explorerons une s\u00e9lection de quelques aspirations du pass\u00e9 qui sont devenues r\u00e9alit\u00e9, ou sont en passe de le devenir. A ces fins nous reviendrons sur une vari\u00e9t\u00e9 de sujets qui ont \u00e9t\u00e9 au c\u0153ur de beaucoup de discussions et d\u2019efforts dans les 2 \u00e0 5 derni\u00e8res ann\u00e9es et qui viennent apporter un changement cons\u00e9quent aux pratiques de l\u2019industrie. Pour chacune de ces tendances nous ferons une revue de la probl\u00e9matique de d\u00e9part, les pratiques d\u2019antan, leur \u00e9volution jusqu\u2019\u00e0 aujourd\u2019hui et les d\u00e9fis que cela peut venir poser \u00e0 la cyber communaut\u00e9. Cette revue nous permettra de nous replacer dans le parcours \u00e9volutif de ces tendances, en d\u00e9finir les moteurs, obstacles, risques, b\u00e9n\u00e9fices, et comment les conceptualiser pour mieux les aborder. Ces tendances ne furent pas s\u00e9lectionn\u00e9es purement subjectivement mais \u00e9galement dans une optique de consolidation des th\u00e8mes sur lesquels la communaut\u00e9 a fait beaucoup de progr\u00e8s et qui ont \u00e9t\u00e9 d\u00e9j\u00e0 bien d\u00e9finis dans la litt\u00e9rature acad\u00e9mique et\/ou de l\u2019industrie. Ainsi nous esp\u00e9rons vous laisser non seulement avec une revue structur\u00e9e de ces tendances, mais \u00e9galement des pistes de r\u00e9flexion sur le statut et la continuation de leur \u00e9volution et de l\u2019\u00e9mergence des d\u00e9fis associes \u00e0 consid\u00e9rer. A noter que nous n\u2019aborderons pas certains sujets trop volatiles tel que l\u2019\u00e9volution du paysage de cybermenaces ou trop juridique comme les changements r\u00e8glementaires et l\u00e9gislatif des derni\u00e8res ann\u00e9es. Ces sujets requiert un niveau de d\u00e9tails trop pousses et ne sont pas repr\u00e9sentatif de changements propre \u00e0 l\u2019industrie m\u00eame de la cyber m\u00eame si ils peuvent en \u00eatre les motivateurs. Si cette session ne se veut pas exhaustive et encore moins d\u00e9finitive, elle a pour but de poser un regard r\u00e9trospectif sur quelques pratiques \u00e9mergentes non-n\u00e9gligeable pour le cyber-professionnel d\u2019aujourd\u2019hui et sont en passe de refa\u00e7onner notre approche ou celle de nos pairs dans nombre de domaines d\u2019expertise.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t

Bio<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

Thomas<\/strong> est conseiller expert en cyber-strat\u00e9gie chez Mandiant (maintenant une division de Google Cloud). Il tire parti de son exp\u00e9rience d’ing\u00e9nieur en d\u00e9tection et d’intervenant en r\u00e9ponse aux cyber-incidents pour aider ses clients \u00e0 mettre en place des programmes de cybers\u00e9curit\u00e9 fond\u00e9s sur le cyber-risque et le renseignement sur les menaces. Gr\u00e2ce \u00e0 cette position unique, Thomas participe r\u00e9guli\u00e8rement \u00e0 la formulation et communication de cyber-strat\u00e9gies d\u2019entreprise aupr\u00e8s des ex\u00e9cutifs et\/ou conseils d’administration pour de nombreuses entreprises en Am\u00e9rique du Nord et internationalement. Tout en se concentrant principalement sur des clients issus de secteurs hautement r\u00e8glement\u00e9s tels que les services financiers, l\u2019\u00e9nergie et la sante, il travaille aussi r\u00e9guli\u00e8rement avec des clients du secteur publique, manufacturier et commer\u00e7ant. Cette panoplie d\u2019exp\u00e9riences lui a permis de d\u00e9couvrir et d\u2019analyser comparativement les approches diverses et vari\u00e9es des cyber-strat\u00e9gies en r\u00e9ponse aux d\u00e9fis encourus par chacune de ces industries. C\u2019est enrichi de ces perspectives que Thomas s\u2019adresse \u00e0 vous aujourd\u2019hui.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t\t
\n\t\t\t\t\t<\/path><\/svg><\/div>\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\"datalocaltmp.jpg\"\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

datalocaltmp<\/h3>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

A Ghidra visualisation is worth a thousand GDB breakpoints<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

## A Ghidra visualisation is worth a thousand GDB breakpoints. Whether reverse engineering malware, debugging an application, or researching device security; being able to quickly gain a deep understanding of the project at hand is a huge advantage. This talk aims to illustrate shortfalls of GDB-only-debugging while providing a guide to producing\u00a0\u00a0 visualisations of native code execution to better focus time and efforts. The talk will cover the process of visualising Android native execution for reverse engineering projects, as well as presenting the benefits of being able to quickly visualise the native execution layer of various Android components. Covering how this generally speeds up what would traditionally require GDB breakpoints and stepping through substantial amounts of decompiled code. Initially the talk will present an example Android application to describe the problem at hand with regards to managing many breakpoints to debug a crashing application. The talk will transition to presenting the current opensource tool stack for execution visualisation (Ghidra + Frida + Cartographer + Lighthouse), how they practically work together to visualise Android Application execution. This portion of the talk will show a practical example of visualising Facebook Messengers native code execution within Ghidra. The talk will then revisit the initial problem application with the visualisation approach to illustrate the significant speedup in debugging. The presentation will then cover the limitations of the current open-source tooling, specifically the inability to support visualising execution on non-rooted devices or execution in non-app processes. I will\u00a0 present my modifications to the tooling (OSS available on my Github) to provide a solution to these short comings and provide a practical example of debugging closed-source native libraries on the Quest 2 VR Headset. The talk will conclude with my general thoughts on these visualisation solutions and how they are extensible to many different projects outside of mobile technologies; as well as present some new tools that are coming out.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t

Bio<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

datalocaltmp<\/strong> is an independent security researcher focused on mobile technologies. I have previously maintained the blog at https:\/\/theappanalyst.com as well as currently maintain https:\/\/datalocaltmp.github.io. Previous work was focused towards ensuring consumer privacy, notably my work with TechCrunch on AirCanada’s (and many others) screen recording functionality resulted in an App Store policy change from Apple. I also have worked with the Biden Campaign in 2020 to prevent the leakage of voter records through their application (covered in detail @ theappanalyst.com). I now investigate security within mobile apps and platforms, claiming bounties with Bird Scooters, Amazon Ring Cameras, Reddit, PlentyofFish, Biden Campaign app, and many others. I have recently given a talk at Meta’s private bug bounty conference in Seoul on visualizing native code execution within their Messenger application and Quest 2 platform. The talk was well received and I believe it’s a topic that many are unfamiliar with but would benefit from.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t\t
\n\t\t\t\t\t<\/path><\/svg><\/div>\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\"Hugo-Genesse.jpg\"\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Hugo Genesse<\/h3>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

All Bytes are Equal but Some are More Equal Than Others<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

Diffing is used in software engineering to see differences between two inputs. In reverse-engineering, this is commonly used to see the differences between two versions of a binary, known as patch diffing. The goal of this talk is to highlight other uses for diffing in reverse-engineering for both static and dynamic analysis that are less common than patch diffing and can be used for different specializations other than vulnerability research on n-days.  As with every reverse-engineering tool, the limitations and ways to assess when the analysis can get wrong and what to do to correct those cases will be presented. For static analysis, diffing uses algorithms to calculate how similar basic blocks and control flow inside of a function to find common functions between multiple binaries. By visualizing the similarities and differences, reverse engineers can build robust detections, prioritize their analysis by identifying common libraries in different pieces of statically-linked software that you don\u2019t want to analyze and also find vulnerable dependencies in firmware. For dynamic analysis, diffing can be used with execution traces to pinpoint the code responsible for the change in behavior and analyze memory snapshots to find specific areas where data is stored. Simply create execution traces where the binary behaves differently and diff them to accelerate your workflow. Diffing will then be useful when looking at a malware that is cloaking its malicious actions when detecting a sandbox and even when reverse-engineering a video game and you want to find out your player\u2019s structures in memory. Using free and open-source tools including Ghidra, BinExport and Bindiff, Cartographer and DynamoRIO,  demos of different cases will be presented during the talk to showcase the power of diffing when reverse engineering. Furthermore, new features for dynamic tracing based on the number of executions in each trace will be released specially for BSidesMTL.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t

Bio<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

Hugo Genesse<\/strong> is working as a cybersecurity researcher at Hitachi Energy Research focused on Industrial Control Systems Cybersecurity for the power grid. He studies the cybersecurity of embedded devices, software and network protocols to build a safer power grid. In his spare time, he is the VP-conference at NorthSec where he leads the content for the conference alongside the CFP team. He is an alumni of the PolyHack\/PolyHx cybersecurity club from Polytechnique Montreal. He also previously worked at Google on crimeware and botnets to track the bad guys on the Internet. <\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t\t
\n\t\t\t\t\t<\/path><\/svg><\/div>\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\"JOhnny-Shivers.jpg\"\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

John Aron<\/h3>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Don't lose control of your security controls and identity<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\tThe internet has become a nightmare. In the 80s and 90s it was supposed to deliver information equality and social utopia yet presently the internet is used as a tool in cyberwarfare, the ethereal fifth domain of conflict. Dark new fantasies and ideas about the internet \u2014 with the puppet strings that stretch from the Kremlin to Beijing to Palo Alto \u2014 are often just as ridiculous as the sunny visions they attempt to replace. Venture capitalists eagerly invested in social media without regard to how your identity would be used and abused or impact future national defense. Worldwide hacker communities culture shifted as they dissolved with the adoption of internet uses and users grew. We are now stuck in a paradigm of multiple gaps. Let\u2019s explore alternative strategies \u2013 and shape a return to what was supposed to be.\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Bio<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

John Aron<\/strong> presented at the usual spots in these States for the DoDIN and at Security BSides in Columbus Ohio and San Diego California. Aronetics is a small startup defense and counter-offensive firm HQ’d in Cleveland Ohio and travelled often to get these ideas out how to tamper-proof your identity and your computer. I am a recognized subject matter expert and doing my part to add defenses to our mutual and national ethic. As a hunted person from national adversary, I am a bit careful of where I go and to whom I present. I have no perceived issues presenting this humor and idea to Security BSides Montreal and welcome the opportunity to add humor to such a dark topic. What we need is more sunshine and humor to fend off this advanced and annoying persistent threat.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t\t
\n\t\t\t\t\t<\/path><\/svg><\/div>\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t
\n\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\"Untitled_6Pp5bst.jpg\"\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\"Our-Team-Valencia-Risk.jpeg\"\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Julian & Pavle Bozalo<\/h3>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Doing More With Less: Securing Small Organizations<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

In today\u2019s rapidly evolving digital landscape, small organizations consistently face a myriad of cybersecurity threats. Often operating with limited resources, these organizations must find innovative ways to protect their valuable digital assets without compromising their ability to grow and succeed. This presentation will delve into effective strategies and tactics for securing small organizations through the lens of a hypothetical case study. Our approach focuses on three essential components: tabletop simulations, implementing a cybersecurity culture, and crown jewels assessments. The case study examines a small organization that successfully implements these measures to address its security challenges. In a world where cyber threats are constantly evolving, it is crucial to prepare for a wide range of potential scenarios. Tabletop simulations serve as an invaluable tool in this regard, providing a controlled environment in which stakeholders can collaborate, identify potential vulnerabilities, and develop response strategies. We will demonstrate the benefits of conducting tabletop simulations, emphasizing their ability to help organizations uncover and address weaknesses in their cybersecurity infrastructure. Creating a strong cybersecurity culture is another vital aspect of securing small organizations. This presentation will discuss the importance of fostering security awareness and adherence to best practices among employees. By embedding cybersecurity practices into the fabric of the organization, small businesses can significantly reduce their susceptibility to cyberattacks. We will explore the role of training programs, ongoing communication, and employee engagement in developing a robust cybersecurity culture. Lastly, we will examine the concept of crown jewels assessments, an approach designed to help small organizations identify and prioritize their most valuable digital assets. By understanding which assets are critical to the organization\u2019s success and allocating resources to protect them, small organizations can maximize the impact of their security measures. We will discuss the process of conducting crown jewels assessments, including identifying critical assets, evaluating potential threats, and developing tailored protection strategies. Attendees will leave this presentation with a comprehensive understanding of the practical steps small organizations can take to mitigate cybersecurity risks. By leveraging tabletop simulations, fostering a cybersecurity culture, and conducting crown jewels assessments, small organizations can do more with less and strengthen their overall security posture. Through the application of these strategies, small businesses can minimize their exposure to cyber threats, safeguard their digital assets, and build a more resilient and secure foundation for future growth.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t

Bio<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

By day, Julian<\/strong> works as a penetration tester for Valencia Risk, hunting vulnerabilities to exploit. By night, Julian is a researcher and journalist focused on Russian cyberspace. Using his OSINT skills, Julian uncovers emerging threats to the Western world.<\/p>

Pavle<\/strong> is a cybersecurity analyst for Valencia Risk, with an academic background in political science. He is fluent in English, French, Russian, Serbian, and Bulgarian, with a keen interest in understanding the implications of the evolving threat landscape on human and civil rights.<\/p><\/div><\/div><\/div><\/div>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t\t
\n\t\t\t\t\t<\/path><\/svg><\/div>\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\"Antonio-Juanilla.jpg\"\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Mitch Breton<\/h3>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Intro to Binary Exploitation With Pwntools<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

PwnTools is a versatile software library and framework designed to aid developers and exploiters in working with software vulnerabilities. This talk will provide an introduction to PwnTools and demonstrate its effectiveness in reverse engineering and exploit development. Participants will gain insights into utilizing PwnTools to analyze the internal mechanisms of an application, construct a buffer overflow payload specific to the application, and extract a concealed password from the code. The presentation will encompass fundamental concepts, starting with reverse engineering techniques to unveil the inner workings of a program. Attendees will learn how to employ PwnTools to interact with low-level program components like memory, assembly code, and network sockets. Additionally, the talk will delve into exploit development, highlighting the creation and delivery of payloads, memory manipulation, and automation of repetitive tasks using PwnTools. Furthermore, participants will be introduced to CheckSec, a tool within PwnTools that verifies the presence of various security controls in binary files. The usage of GDB (GNU Debugger) will be explained, including techniques for comprehending GDB output and leveraging its capabilities effectively. The talk will also demonstrate the application of the Cyclic tool, which generates patterns essential for crafting exploits. Python will be showcased as a tool for writing exploit code with PwnTools. Additionally, the discussion will encompass vital topics in binary security, such as Address Space Layout Randomization (ASLR), Position Independent Execution (PIE), and the critical concept of buffer overflows. By attending this talk, participants will gain practical knowledge of PwnTools and its applications in reverse engineering and exploit development. They will acquire the skills necessary to analyze and manipulate program components, generate exploits, and navigate the intricacies of binary security. With PwnTools as their ally, participants will be empowered to tackle software vulnerabilities with greater confidence and proficiency. This talk, if selected to be presented at Bsides-Montreal will help demystify binary exploitation for new, and seasoned security professionals.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t

Bio<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

Mitch Breton<\/strong> is a passionate and dedicated Application Security Analyst. Working towards sharing the knowledge I have gained, and continuing my education and career within the cybersecurity space. I got my started in this space after going to college and not wanting to be \u00ab\u00a0Just another application programmer\u00a0\u00bb. A few Youtube videos later and I had signed myself up for college again at Fanshawe in London for the cyber security program and post my graduation have been working in the Industry for about 4 years now.<\/p>

I have a passion for Red and Purple Team Security, Exploit Development, Reverse Engineering, Programming, Hack the Box, Try Hack Me, Lock Picking, Physical Security and Public Speaking. Forever a curious mind I love to work with others and also independently to enhance the skills of myself and my team as we work to secure applications and networks against the innumerable\u00a0 threats we face in this space every day.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t\t
\n\t\t\t\t\t<\/path><\/svg><\/div>\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\"20160331-2016-03-31_13.17.19_tpemBae.jpg\"\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Nicolas-Lo\u00efc Fortin<\/h3>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Homo economicus: La malheureuse habitude de qualifier les humains comme le maillon faible<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

Dans cette pr\u00e9sentation, nous nous int\u00e9ressons de pr\u00e8s \u00e0 l’id\u00e9e de l’Homo economicus, souvent repr\u00e9sent\u00e9e comme une figure humaine d’une rationalit\u00e9 parfaite qui fait toujours le choix optimal en mati\u00e8re de cybers\u00e9curit\u00e9. Cette repr\u00e9sentation, en sch\u00e9matisant l’individu comme une entit\u00e9 uniquement rationnelle et \u00e9go\u00efste, tend \u00e0 simplifier outre mesure la v\u00e9ritable nature humaine, voire \u00e0 la d\u00e9naturer. Une telle vision, nous semble-t-il, fait l’impasse sur la complexit\u00e9 intrins\u00e8que de l’\u00eatre humain, sur ses motivations multiples et parfois contradictoires, sur le r\u00f4le fondamental de ses \u00e9motions, sur l’importance de ses valeurs \u00e9thiques personnelles, sur la nature et l’intensit\u00e9 de ses relations sociales, et m\u00eame sur la r\u00e9alit\u00e9 de sa charge cognitive, qui n’est pas in\u00e9puisable. En outre, cette conception n\u00e9glige un aspect crucial : loin d’\u00eatre le maillon faible, l’humain est en r\u00e9alit\u00e9 l’acteur principal dans l’orchestration de la cybers\u00e9curit\u00e9. Il est celui qui con\u00e7oit, met en \u0153uvre, contr\u00f4le, et am\u00e9liore sans cesse les syst\u00e8mes de protection. Son r\u00f4le est donc d\u00e9terminant. Par ailleurs, nous examinons les cons\u00e9quences de cette vision \u00e9troite et r\u00e9ductrice sur les approches que les praticiens en cybers\u00e9curit\u00e9 utilisent pour d\u00e9finir et mettre en place les syst\u00e8mes de protection. Nous constatons qu’elle conduit souvent \u00e0 des impasses, \u00e0 des mesures inefficaces ou contre-productives, et parfois m\u00eame \u00e0 des risques accrus. C’est pourquoi nous proposons de nouvelles directions pour une meilleure compr\u00e9hension du comportement en cybers\u00e9curit\u00e9 des humains. Nous plaidons pour un Homo cyber-economicus, qui tient compte de l’interd\u00e9pendance, de l’empathie et de l’altruisme dans les d\u00e9cisions de cybers\u00e9curit\u00e9. Une telle approche, plus r\u00e9aliste et plus riche, pourrait conduire \u00e0 des strat\u00e9gies en cybers\u00e9curit\u00e9 plus efficaces. Elle pourrait aussi favoriser une soci\u00e9t\u00e9 plus s\u00e9curitaire, o\u00f9 l’humain serait reconnu \u00e0 sa juste valeur, non pas comme un maillon faible, mais comme une force de changement et de progr\u00e8s.

**La nature humaine : plus complexe que l’Homo economicus**

L’Homo economicus est un mod\u00e8le conceptuel de l’\u00eatre humain qui est souvent utilis\u00e9 en \u00e9conomie. Il est suppos\u00e9 \u00eatre un individu rationnel qui cherche \u00e0 maximiser son utilit\u00e9, c’est-\u00e0-dire son bien-\u00eatre. Ce mod\u00e8le est tr\u00e8s utile pour analyser des situations \u00e9conomiques, mais il ne rend pas compte de la complexit\u00e9 de la nature humaine. Les humains ne sont pas toujours rationnels. Ils peuvent \u00eatre influenc\u00e9s par leurs \u00e9motions, leurs valeurs, leurs relations sociales, et m\u00eame par leur charge cognitive. Par exemple, un individu peut \u00eatre plus susceptible de faire un choix risqu\u00e9 s’il est sous pression ou s’il est \u00e9motionnellement impliqu\u00e9 dans la situation. De m\u00eame, un individu peut \u00eatre plus susceptible de suivre les recommandations de ses amis ou de sa famille que de prendre une d\u00e9cision par lui-m\u00eame.

**L’importance de l’humain dans la cybers\u00e9curit\u00e9**

L’humain est en r\u00e9alit\u00e9 l’acteur principal dans l’orchestration de la cybers\u00e9curit\u00e9. C’est lui qui con\u00e7oit, met en \u0153uvre, contr\u00f4le, et am\u00e9liore sans cesse les syst\u00e8mes de protection. Son r\u00f4le est donc d\u00e9terminant. Cependant, la vision \u00e9troite et r\u00e9ductrice de l’Homo economicus conduit souvent \u00e0 des approches en cybers\u00e9curit\u00e9 qui ne tiennent pas compte de la complexit\u00e9 de la nature humaine. Cela peut conduire \u00e0 des impasses, \u00e0 des mesures inefficaces ou contre-productives, et parfois m\u00eame \u00e0 des risques accrus.

**Un Homo cyber-economicus : une approche plus r\u00e9aliste et plus riche**

Nous proposons de nouvelles directions pour une meilleure compr\u00e9hension du comportement en cybers\u00e9curit\u00e9 des humains. Nous plaidons pour un Homo cyber-economicus, qui tient compte de l’interd\u00e9pendance, de l’empathie et de l’altruisme dans les d\u00e9cisions de cybers\u00e9curit\u00e9. Une telle approche, plus r\u00e9aliste et plus riche, pourrait conduire \u00e0 des strat\u00e9gies en cybers\u00e9curit\u00e9 plus efficaces. Elle pourrait aussi favoriser une soci\u00e9t\u00e9 plus s\u00e9curitaire, o\u00f9 l’humain serait reconnu \u00e0 sa juste valeur, non pas comme un maillon faible, mais comme une force de changement et de progr\u00e8s.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t

Bio<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

Avec une carri\u00e8re s’\u00e9tendant sur plus de 25 ans, M. Fortin<\/strong> est un leader respect\u00e9 et influent dans le secteur des technologies de l’information. Depuis l’aube du nouveau mill\u00e9naire, il a consciemment orient\u00e9 sa pratique vers la s\u00e9curit\u00e9 de l’information, affirmant une expertise qui est devenue sa marque de fabrique. En 2008, il a franchi une \u00e9tape importante en cr\u00e9ant Intras\u00e9cure, une entreprise \u00e0 travers laquelle il a affin\u00e9 ses comp\u00e9tences et acquis une exp\u00e9rience solide en architecture de s\u00e9curit\u00e9, gouvernance, gestion de crises et conseil strat\u00e9gique. Sa polyvalence lui a permis de travailler aussi bien avec la haute direction qu’avec les \u00e9quipes techniques, affirmant son r\u00f4le en tant que facilitateur et leader dans le domaine. Anim\u00e9 par un d\u00e9sir insatiable de partager sa passion pour le monde de la cybers\u00e9curit\u00e9, M. Fortin s’est impliqu\u00e9 dans de nombreux projets. Il a co-fond\u00e9 l’\u00e9v\u00e9nement de s\u00e9curit\u00e9 offensive Hackfest, a apport\u00e9 une contribution essentielle \u00e0 l’organisation du CQSI et a r\u00e9cemment mis sur pied l’\u00e9v\u00e9nement de s\u00e9curit\u00e9 d\u00e9fensive intitul\u00e9 \u00ab SeQCure \u00bb. Il a anim\u00e9 une multitude de podcasts sur la s\u00e9curit\u00e9, avant de lancer son propre podcast, le PolyS\u00e9cure, en fin 2020. Il est r\u00e9guli\u00e8rement sollicit\u00e9 pour donner des conf\u00e9rences et des formations sur une vari\u00e9t\u00e9 de sujets, allant du z\u00e9ro trust \u00e0 l’architecture d\u2019entreprise. M. Fortin a \u00e9galement mis sa plume au service de son expertise, contribuant au livre \u00ab\u00a0Les fondamentaux de la gestion de crise cyber\u00a0\u00bb. De plus, il publie r\u00e9guli\u00e8rement des billets succincts et informatifs sur diff\u00e9rents blogs et newsletters, fournissant des \u00e9clairages pr\u00e9cieux sur les enjeux actuels de la cybers\u00e9curit\u00e9. Sa carri\u00e8re est une d\u00e9monstration de son engagement envers l’avancement de la s\u00e9curit\u00e9 de l’information.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t\t
\n\t\t\t\t\t<\/path><\/svg><\/div>\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\"Rolland-Winters.jpg\"\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Rolland Winters<\/h3>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Passive recon & intelligence collection using cyber-squatted domains<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

The DNS system was not designed with security in mind, and domain Squatting techniques are most commonly identified and known by their use in phishing attacks. In this talk we will demonstrate a less-often considered use for these domain names as reconnaissance and intelligence gathering tools. Domain squatting presents the creative attacker with low cost, and extremely effective ways to passively gather large amounts of useful data & intelligence. These techniques can be highly targeted, or they can be used by cyber criminals to cast a wide net, taking advantage of victims as the opportunities present themselves. For our research, we are using \u00ab\u00a0catch-all\u00a0\u00bb email inboxes on squatted variants of a very popular public email service. Our intention for this data is to analyse & demonstrate the diversity of information obtainable using this technique. A single typo or bitflip in the domain name of an email address will result in our inboxes receiving email intended for someone else! Using roughly a dozen domain names, we are currently capturing thousands of emails each week. Are you curious to know what we’ve found, and how you can defend your organisation about this type of attack? <\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t

Bio<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

Rolland Winters<\/strong> is a Cyber Operator (Canadian Armed Forces) & Director of Cyber Security (Commissionnaires du Quebec). Rolland Winters is an army reservist and team lead for the cyber protection team at 34 Signal Regiment in Montreal. He is also the director of cybersecurity for the Commissionnaires du Qu\u00e9bec. He has a diverse background, with professional experience in military radio and satellite systems, IOT, smart home automation, CCT\/security systems, web application development, and information security.
<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t\t
\n\t\t\t\t\t<\/path><\/svg><\/div>\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\"Terry-Cutler.jpg\"\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Terry Cutler<\/h3>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

\u201cInsider Secrets\u201d to HOW hackers are getting in, and WHY<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

In the digital age, where our lives are intertwined with technology, the specter of cyber threats looms ominously, posing an ever-increasing risk to our personal and professional security. This presentation promises to offer attendees a rare \u00ab\u00a0behind-the-scenes look\u00a0\u00bb at the sinister world of hackers, their methods, and how they exploit the plethora of information available online to orchestrate targeted attacks. This session delves into the heart of the problem with modern-day security, highlighting the inherent vulnerabilities that we often overlook. Attendees will gain invaluable insights into the minds of the threat agents – the hackers who relentlessly seek to capitalize on these weaknesses, leaving individuals and organizations exposed to potential harm. Essential terminology will be demystified, ensuring that the audience grasps the nuances of cyber threats and becomes better equipped to navigate the digital landscape safely. The presentation unfolds the meticulous phases hackers employ in their quest to target specific victims, revealing the cunning strategies and tactics employed to breach digital defenses. Perhaps most crucially, the session places a strong emphasis on social engineering awareness, shedding light on how hackers leverage psychological manipulation to extract sensitive information from unsuspecting individuals. Attendees will leave this talk more cognizant of their online presence, understanding how seemingly innocuous data can be ingeniously woven together to construct a dangerous profile. To underscore the gravity of the issue, a real-world hacking demonstration will showcase the practical implications of lax online habits, leaving a lasting impact on the audience. However, the session is not one-sided; defensive tools and strategies will also be presented, empowering attendees to take proactive measures in safeguarding their digital identities. The vast expanse of topics covered ensures a comprehensive and enlightening experience for attendees, instilling them with newfound knowledge to secure their online domains. As they emerge from this enlightening session, participants will be more alert, discerning, and better equipped to confront the lurking cyber threats that surround us daily. Armed with the wisdom gained from this presentation, individuals can take charge of their digital destinies and protect themselves in an ever-evolving technological landscape.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t

Bio<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

Terry Cutler<\/strong>, the CEO of Cyology Labs, is an internationally acclaimed cybersecurity expert and a Government-cleared Ethical Hacker. He has been providing top-notch consulting services to some of Canada’s largest corporations for over 20 years, advising them on internal and external security penetration prevention and remedies. Terry is also the author of the #1 Amazon best-selling book \u00ab\u00a0Insider Secrets to Internet Safety: Advice from a Professional Hacker.\u00a0\u00bb He has made numerous TV appearances and has delivered live public speaking events on cybersecurity.Terry’s highly effective online learning program, Internet Safety University (www.InternetSafetyUniversity.com), attracts over 39,000 students from 150 countries. The program, developed in 2013, addresses cyber-crime, spying, security failures, Internet scams, and social networking dangers that families and individuals encounter every day.Terry’s achievements in the cybersecurity field have been acknowledged with numerous prestigious awards. In 2017, he was awarded the Cybersecurity Educator of the year, followed by being named to IFSEC Global’s Top 20 Most Influential People in Cybersecurity for three consecutive years (2018, 2019, 2020). He was also listed in the CISO Platform Global TOP 100 List in the same year. To further assist businesses and individuals in staying safe online, Terry launched his highly anticipated App Fraudster (www.FraudsterApp.com).<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t\t
\n\t\t\t\t\t<\/path><\/svg><\/div>\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\"Thomas-Veynatchter.jpg\"\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Thomas Veynachter<\/h3>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t

Le besoin et l'efficacit\u00e9 des transformations des \u00e9quipes s\u00e9curit\u00e9 dans les organisations<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

S\u00e9curiser le savoir-faire et la propri\u00e9t\u00e9 intellectuelle, pr\u00e9server la confiance des clients : ce ne sont l\u00e0 que quelques-unes des raisons pour lesquelles les entreprises investissent dans la cybers\u00e9curit\u00e9. Le march\u00e9 mondial de la cybers\u00e9curit\u00e9, qui conna\u00eet une croissance rapide, \u00e9tait \u00e9valu\u00e9 \u00e0 132,94 milliards de dollars en 2021 et devrait cro\u00eetre \u00e0 un taux de croissance annuel moyen de 14,1 % entre 2022 et 2027. \u00c0 l’heure o\u00f9 ces investissements colossaux sont r\u00e9alis\u00e9s, la menace n’a jamais \u00e9t\u00e9 aussi grande et, avec l’av\u00e8nement de l’IA, les groupes cyberterroristes n’ont jamais \u00e9t\u00e9 aussi efficaces pour soutirer de l’argent \u00e0 leurs victimes (6 000 milliards USD en 2021). Que pouvez-vous faire pour vous prot\u00e9ger ? Si la souscription d’une cyber-assurance semble incontournable, est-elle suffisante ? Compte tenu du durcissement des crit\u00e8res et de l’augmentation des primes d’assurance, elle ne semble pas suffisante. Alors quelles sont les autres solutions ? L’une d’entre elles, et c’est celle que je vais vous pr\u00e9senter, repose sur la transformation de notre fa\u00e7on de penser la cybers\u00e9curit\u00e9. En appliquant des concepts simples bas\u00e9s sur la livraison de valeur, la transparence, la synchronisation des \u00e9quipes et une bonne communication, l’int\u00e9gration de la s\u00e9curit\u00e9 d\u00e8s la conception devient un v\u00e9ritable atout pour se concentrer sur les bonnes priorit\u00e9s, ma\u00eetriser les co\u00fbts et garantir un haut niveau de qualit\u00e9. Dans cette pr\u00e9sentation, je vais partager avec vous mon exp\u00e9rience de 18 mois au sein d’un des 20 plus grands groupes bancaires mondiaux. Nous verrons comment la d\u00e9cision de transformer a \u00e9t\u00e9 prise, comment la transformation s’est d\u00e9roul\u00e9e, comment elle a \u00e9t\u00e9 int\u00e9gr\u00e9e aux autres initiatives du groupe, les d\u00e9fis, les points durs et surtout les b\u00e9n\u00e9fices que le groupe en a retir\u00e9s. Au cours de cette session chacun pourra se projeter au sein de son organisation actuelle et envisager les \u00e9tapes suivantes.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t\t

Bio<\/h4>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

Thomas<\/strong> est un expert chevronn\u00e9 en cybers\u00e9curit\u00e9 avec 15 ans d’exp\u00e9rience dans le secteur bancaire. Passionn\u00e9 par la transformation des entreprises, il est reconnu pour ses comp\u00e9tences techniques avanc\u00e9es en cryptographie. Apr\u00e8s avoir d\u00e9but\u00e9 comme administrateur de la s\u00e9curit\u00e9 des syst\u00e8mes d’information, il a rapidement gravi les \u00e9chelons pour devenir responsable de l’\u00e9quipe de gestion des secrets d’une grande institution financi\u00e8re. Cette exp\u00e9rience l’a conduit \u00e0 mettre en place des offres de services de chiffrement et de gestion de cl\u00e9s, offrant un haut niveau de disponibilit\u00e9 pour des probl\u00e9matiques cruciales telles que la protection des donn\u00e9es et la pr\u00e9vention des cyber-attaques. Gr\u00e2ce \u00e0 son leadership, Thomas a jou\u00e9 un r\u00f4le cl\u00e9 dans la transformation organisationnelle des \u00e9quipes de cybers\u00e9curit\u00e9 de la banque, encourageant une approche proactive de la s\u00e9curit\u00e9. Sa passion pour l’am\u00e9lioration continue s’est refl\u00e9t\u00e9e dans son travail avec les \u00e9quipes, les guidant vers une plus grande maturit\u00e9 dans leurs livraisons quotidiennes. Aujourd’hui, \u00e0 la t\u00eate du bureau canadien de Neotrust, Thomas a constitu\u00e9 une \u00e9quipe d’experts en cybers\u00e9curit\u00e9 capables de soutenir leurs clients \u00e0 deux niveaux distincts. D’une part, ils aident les PME \u00e0 mettre en place des solutions et des processus de cybers\u00e9curit\u00e9. D’autre part, ils apportent leur expertise aux grandes organisations sur les questions de cybertransformation, de gestion de crise et dans des domaines hautement sp\u00e9cialis\u00e9s tels que la gestion de l’information d’entreprise (EIM) et la cryptographie. Gr\u00e2ce \u00e0 son leadership et \u00e0 son engagement en faveur de l’excellence, Thomas est reconnu dans le domaine de la cybers\u00e9curit\u00e9, offrant des solutions cyber automatis\u00e9es adapt\u00e9es aux besoins sp\u00e9cifiques de chaque client, tout en restant \u00e0 l’avant-garde des derniers d\u00e9veloppements technologiques et des tendances de l\u2019industrie.<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t

\n\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t

Comit\u00e9 scientifique<\/h2>\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t
Darren Mott | Quantum Research International<\/b><\/span><\/span><\/span>\nHelen Oakley | SAP
<\/b><\/span><\/span><\/span>Marc-Etienne L\u00e9veill\u00e9 | ESET<\/b><\/span><\/span><\/span>\nMasarah Paquet-Clouston | Universit\u00e9 de Montr\u00e9al<\/b><\/span><\/span><\/span>\nMathilde Conseil | BDC<\/b><\/span><\/span><\/span>\nPierre-Marc Bureau | Google Canada<\/b><\/span><\/span><\/span>\n<\/pre>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"
Horaire 2023 | 16 Septembre | Biblioth\u00e8que et Archives nationales du Qu\u00e9bec 8:30AM | Ouverture des portes \u00a0 9:00AM \u2013 9:05AM | Mots d’ouverture || Reverse Engineering For Malware Analysis Workshop (Salle M.460) \u00a0 9:05AM \u2013 9:30AM | Capt(ret) Steve Waterhouse Avons-nous am\u00e9lior\u00e9 notre r\u00e9silience face \u00e0 l\u2019\u00e9volution technologique en 25 ans ? 9:30AM – […]<\/p>\n","protected":false},"author":1,"featured_media":452,"parent":392,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_seopress_robots_primary_cat":"","_seopress_titles_title":"","_seopress_titles_desc":"","_seopress_robots_index":"","footnotes":""},"class_list":["post-433","page","type-page","status-publish","has-post-thumbnail","hentry"],"_links":{"self":[{"href":"https:\/\/bsidesmtl.ca\/fr\/wp-json\/wp\/v2\/pages\/433","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bsidesmtl.ca\/fr\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/bsidesmtl.ca\/fr\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/bsidesmtl.ca\/fr\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/bsidesmtl.ca\/fr\/wp-json\/wp\/v2\/comments?post=433"}],"version-history":[{"count":4,"href":"https:\/\/bsidesmtl.ca\/fr\/wp-json\/wp\/v2\/pages\/433\/revisions"}],"predecessor-version":[{"id":476,"href":"https:\/\/bsidesmtl.ca\/fr\/wp-json\/wp\/v2\/pages\/433\/revisions\/476"}],"up":[{"embeddable":true,"href":"https:\/\/bsidesmtl.ca\/fr\/wp-json\/wp\/v2\/pages\/392"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/bsidesmtl.ca\/fr\/wp-json\/wp\/v2\/media\/452"}],"wp:attachment":[{"href":"https:\/\/bsidesmtl.ca\/fr\/wp-json\/wp\/v2\/media?parent=433"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}